GitBucket
root
12Sec CTF - PwnPad v1.0
This is where I am storing my documentation and solutions for the PwnPad CTF.
There are spoilers here, if you dont want to read spoilers/solutions/flags then turn away now
You have been warned.
THIS REPO CONTAINS SPOILERS
That being said the solutions I have come up with may not be the intended solution, but they are what worked for me.
Status
| done | # | Name | Topics | Description |
|---|---|---|---|---|
| [x] | 01 | Serial Snitch | #UART |
Intercept and decode UART communication. |
| [x] | 02 | Echo Chamber | #UART |
Intercept and decode UART communication, with security through obscurity. |
| [x] | 03 | Bus Whisperer | #I2C |
Spy on I2C traffic to extract secrets. |
| [x] | 04 | Invisible Wires | #I2C |
Attack I2C when slave devices are missing. |
| [x] | 05 | Code Heist | #SPI #ISP #Flash #UART |
Dump and analyze firmware from flash. |
| [x] | 06 | Hard Leak | #SPI #ISP #EEPROM |
Extract data from the internal EEPROM. |
| [x] | 07 | Power Trip | #FaultInjection #UART |
Use glitching to bypass dead code statements. |
| [x] | 08 | Glitch Storm | #FaultInjection #UART |
Use glitching to bypass password verification. |
| [x] | 09 | Clock Spy | #SideChannel #UART |
Leak secrets using timing variations. |
| [x] | 10 | Tempo Leak | #SideChannel #UART |
Leak secrets using timing variations with a twist. |
| [ ] | 11 | Chaos Chain: Glitchgate | #FaultInjection #UART |
Combine UART and glitch attacks to break in. |
| [x] | 12 | Chaos Chain: Timebomb | #UART #SideChannel |
Combine UART and chain timing leaks to break in. |
The Board
